Fedora 12: 2009-12233 Critical Update: Bind Cache Poisoning Issue
fedora
November 27, 2009
Update to 9.6.1-P2 release which contains following fix: * Additional section of response could be cached without successful DNSSEC validation even if DNSSEC validation is enabled
Summary
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.
Update Information:
Update to 9.6.1-P2 release which contains following fix: * Additional section of response could be cached without successful DNSSEC validation even if DNSSEC validation is enabled
Topics Covered
Change Log
* Wed Nov 25 2009 Adam Tkac
References
[ 1 ] Bug #538744 - CVE-2009-4022 bind: cache poisoning using not validated DNSSEC responses
https://bugzilla.redhat.com/show_bug.cgi?id=538744
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update bind' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: bind
Product: Fedora 12
Version: 9.6.1
Release: 13.P2.fc12
URL: Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!